[Koha-bugs] [Bug 7550] Self checkout: limit display of patron image to logged-in patron
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Apr 20 15:42:23 CEST 2017
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=7550
--- Comment #24 from Marcel de Rooy <m.de.rooy at rijksmuseum.nl> ---
(In reply to Marc Véron from comment #14)
> Hmm, my patch worked with a hash generated with the image file (as
> recommended in comment #7), and it did not leave a security hole with
> SelfCheckoutByLogin="barcode"
Looks to me that this option is a security hole on itself?
If I guess barcodes, I can still see all images? If I come on sco-main, I will
automatically get the image from the img tag as well? Or do I misunderstand the
discussion here?
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list